* Travis Rhoden <[email protected]> [20121109 09:55]: > I'm not sure what I've done wrong here: > > Things are okay as client.admin: > > # rbd -p images --id admin ls > test > > But not as client.images: > > # rbd -p images --id images ls > error: (1) Operation not permitted > > The privs/caps seem okay in ceph auth: > > # ceph auth list > <snip> > client.admin > key: <snip> > caps: [mds] allow > caps: [mon] allow * > caps: [osd] allow * > client.images > key: <snip> > caps: [mon] allow r > caps: [osd] allow rwx pool=images > client.volumes > key: <snip> > caps: [mon] allow r > caps: [osd] allow rwx pool=volumes, allow rx pool=images >
I had a very similar problem after I upgraded my test cluster from
argonaut to 0.53. For me it was a "caps" parsing issue involving the
'=' character (which has been fixed in 0.54. A nice person on IRC
helped me out. Updating the caps from something like this:
> caps: [osd] allow rwx pool=volumes, allow rx pool=images
To this:
caps: [osd] allow rwx pool volumes, allow rx pool images
...fixed the issue for me.
Apparently in 0.54 parsing of '=' in a caps line will work properly
again.
Ben
--
________________________________________________________________________
pub 4096R/318B6A97 2009-05-11 Ben Poliakoff <[email protected]>
Primary key fingerprint: 3F23 EBC8 B73E 92B7 0A67 705A 8219 DCF0 318B 6A97
signature.asc
Description: Digital signature
